VMware Cloud Community
BrechtMonkerhey
Contributor
Contributor
‎11-22-2012 12:51 AM
Jump to solution

vcenter essentials edition Active Directory logon issue

Hello,

I'm having problems with my VSphere 5.1 setup (essentials edition, max 3 hosts). I installed the vcenter virtual appliance without any problem but I can't add AD users to the permissions configuration.

The vcenter appliance shows up in AD just fine and "domainjoin-cli query" tells me the appliance is domain joined.

I've added some screenshots to illustrate my problem.

http://i47.tinypic.com/2mgjprl.png

I have no option to select AD users

vcenter_AD1.png

vcenter_AD2.png

My management screen seems to be limited compared to screenshots I found on the internet. When I click on "configure authentication", nothing happens. I have re-run the Setup Wizard to no avail.

I have no problem joining separate esxi hosts to AD and logging into them using AD accounts.

Reply
0 Kudos
1 Solution

Accepted Solutions
spravtek
Expert
Expert
‎11-22-2012 01:27 AM
Jump to solution

Hi,

Welcome to the community.

Some questions:

- What user are you using to login to the vCenter appliance via the vSphere client?

- Did you try using the vSphere Web Client? What does it look like there?

- How is your SSO configured?

View solution in original post

Reply
0 Kudos
4 Replies
spravtek
Expert
Expert
‎11-22-2012 01:27 AM
Jump to solution

Hi,

Welcome to the community.

Some questions:

- What user are you using to login to the vCenter appliance via the vSphere client?

- Did you try using the vSphere Web Client? What does it look like there?

- How is your SSO configured?

Reply
0 Kudos
yannara
Contributor
Contributor
‎11-22-2012 02:52 AM
Jump to solution

I have exact the same issue with Appliance. My discussion is below in this thread.

Reply
0 Kudos
BrechtMonkerhey
Contributor
Contributor
‎11-22-2012 03:16 AM
Jump to solution

Hello,

thank you for your reply.

I'm now using the default root user to log in.

It seems like I have been missing the big picture about SSO. I installed the appliance using the wizard and didn't pay attention to the SSO configuration (which passed by with a couple of "default settings" clicks)

I have fixed it by doing this:

  1. I have logged in to the vcenter appliance using the web client and unlocked the "admin" account of the Domain-System domain. I also changed the password
    (more info here: http://www.virtuallyghetto.com/2012/09/default-password-for-vcenter-sso-admin.html)
  2. logged in to the web client again using admin@Domain-System credentials
  3. Added our AD domain to the Identity sources using this excellent manual
    http://www.gabesvirtualworld.com/adding-ad-authentication-to-vmware-sso-5-1/

After this I could log in to the vsphere client using the local root account and give permissions to AD groups, which is what I wanted.

Take care when using the Vsphere appliance: there are some differences concering default users and passwords and these are not always mentioned in online documentation.

Thank you Spravtek for pointing me into the right direction!

Reply
0 Kudos
spravtek
Expert
Expert
‎11-22-2012 03:19 AM
Jump to solution

Good job finding the solution and thanks for summing up what you've done

... Glad to point you in the right direction!

Reply
0 Kudos